Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/7CA2JB0IBvzJNbGwI-nIp57QpfA.roa
File: 7CA2JB0IBvzJNbGwI-nIp57QpfA.roa (raw, json)
Hash identifier: 6PsKPrHLB/IoVL8lpVH3d21iBfigU8YqPgD418lHk4Y=
Subject key identifier: EC:20:36:24:1D:08:06:FC:C9:35:B1:B0:23:E9:C8:A7:9E:D0:A5:F0
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0183B13D6404EF6D12C8A04DD6D769CB21BB
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/7CA2JB0IBvzJNbGwI-nIp57QpfA.roa
Signing time: Fri 07 Oct 2022 06:58:54 +0000
ROA not before: Fri 07 Oct 2022 06:58:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30633
IP address blocks: 2a0f:1e00:987::/48 maxlen: 48
2a0f:1e81:92e8::/48 maxlen: 48
2a0f:e940::/29 maxlen: 29
2a0f:1e81:4319::/48 maxlen: 48
2a0f:1e00:456::/48 maxlen: 48
2a0f:a00::/32 maxlen: 32
2a0f:3d84::/32 maxlen: 32
2a0e:5a80::/29 maxlen: 29
2a0f:3d80:123::/48 maxlen: 48
2a12:d540::/29 maxlen: 29
2a12:ac40::/29 maxlen: 29
2a0f:1e81:cdae::/48 maxlen: 48
2a07:f300::/29 maxlen: 29
2a0f:1e81:1293::/48 maxlen: 48
2a0c:9240::/29 maxlen: 29
2a0f:3d87::/32 maxlen: 32
2a0f:1e00:abc::/48 maxlen: 48
2a0f:1e81:a3d0::/48 maxlen: 48
2a0e:c780::/29 maxlen: 29
2a0f:2100::/29 maxlen: 29
2a0f:a01::/32 maxlen: 32
2a0f:1e00:123::/48 maxlen: 48
2a0f:1e00:def9::/48 maxlen: 48
2a0f:3d82::/32 maxlen: 32
2a0f:e842::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:b1:3d:64:04:ef:6d:12:c8:a0:4d:d6:d7:69:cb:21:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Oct 7 06:58:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ec2036241d0806fcc935b1b023e9c8a79ed0a5f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:15:5e:3e:9d:8b:17:03:00:63:42:5e:56:bf:
3f:a0:9d:01:f8:3e:e6:93:fc:17:5d:db:b7:6d:96:
76:e4:e8:d8:33:23:63:96:8c:d2:4b:68:68:63:95:
69:34:73:33:91:ce:6a:18:b9:d9:8b:a5:c6:70:10:
ae:82:f9:7b:d0:dc:59:9b:67:c8:c6:1c:01:6e:ae:
9d:25:4b:38:c3:2c:81:a6:7f:7f:07:7e:60:a9:ae:
05:68:af:5a:06:20:80:a2:d0:9c:d9:86:cc:47:4d:
e1:5b:0f:f1:64:50:00:6f:a6:27:f7:ef:d6:19:f2:
c9:ef:19:76:d0:f0:38:3b:28:30:e4:36:38:45:47:
02:86:c6:4d:97:39:a9:7a:d1:46:84:53:c2:86:c0:
6d:66:db:91:9c:74:e1:12:60:fa:53:44:eb:72:82:
a6:0e:94:38:90:af:ac:42:80:1d:77:27:08:df:78:
02:1f:9d:f0:f8:b4:f2:53:ac:28:94:01:39:77:bc:
10:2a:44:6f:24:9c:f8:76:34:c7:42:d5:82:c7:f7:
08:79:c4:f7:c4:2c:b9:d8:5e:26:4a:2b:d2:07:37:
7c:cd:f0:ff:de:a3:b8:2b:a2:1b:6b:71:7d:40:f8:
c7:7e:98:8b:b8:83:bf:02:e9:7f:7b:98:9b:94:79:
c9:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:20:36:24:1D:08:06:FC:C9:35:B1:B0:23:E9:C8:A7:9E:D0:A5:F0
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/7CA2JB0IBvzJNbGwI-nIp57QpfA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:f300::/29
2a0c:9240::/29
2a0e:5a80::/29
2a0e:c780::/29
2a0f:a00::/31
2a0f:1e00:123::/48
2a0f:1e00:456::/48
2a0f:1e00:987::/48
2a0f:1e00:abc::/48
2a0f:1e00:def9::/48
2a0f:1e81:1293::/48
2a0f:1e81:4319::/48
2a0f:1e81:92e8::/48
2a0f:1e81:a3d0::/48
2a0f:1e81:cdae::/48
2a0f:2100::/29
2a0f:3d80:123::/48
2a0f:3d82::/32
2a0f:3d84::/32
2a0f:3d87::/32
2a0f:e842::/32
2a0f:e940::/29
2a12:ac40::/29
2a12:d540::/29
Signature Algorithm: sha256WithRSAEncryption
a7:93:3c:ec:e7:75:a7:18:9b:e7:c6:61:e2:f7:40:ad:c4:e0:
3c:c0:cd:84:57:1a:ea:f4:94:76:ba:24:71:47:73:60:8b:0b:
ee:fa:4d:7d:bf:6d:1f:30:9d:c2:59:28:d3:4a:4f:0e:1e:a8:
6b:7a:f9:09:80:71:f8:51:31:ec:2d:73:0c:b5:d5:b7:54:fe:
d1:84:30:5b:90:53:46:a2:fe:12:ec:97:6c:b7:81:bc:e6:2b:
d7:ef:79:a9:ec:03:7d:22:be:a8:6a:86:6a:0f:fe:b9:4e:57:
c1:8f:a8:5e:aa:5c:af:9a:ae:79:69:dc:a8:02:11:f9:84:6f:
d1:b3:a1:25:2c:bd:70:51:e0:94:94:33:64:32:7d:1b:95:0f:
50:15:f9:b9:44:c7:00:24:a2:c7:3c:9b:fc:2b:4a:e3:af:25:
57:1f:7a:63:51:64:ff:1d:3d:65:70:05:f8:6c:da:ea:f5:e4:
b7:46:11:2c:7c:65:21:0a:6b:d4:f0:b2:31:a9:08:11:2e:fb:
94:52:1d:a0:10:c1:5c:9d:28:cc:d0:bc:ec:5b:f8:3e:da:c9:
98:3a:2d:26:c1:99:e2:78:d0:77:d3:a5:b8:fe:90:82:1b:fc:
6c:3b:13:7f:ed:3e:e5:b9:4b:66:f1:49:6a:f0:9a:79:31:34:
6b:fa:1b:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 13:23:35 2025 by rpki-client